Patent · US Active

Systems and methods of detecting malicious powershell scripts

US10579796B1 · kind B1 · utility

10Cited by

6References

18Claims

0Family size

Assignee

United Services Automobile Association (USAA) · US

Inventor

Robert Jason Neel · Boerne, US

Key dates

Filing date	Nov 28, 2017
Grant date	Mar 3, 2020
Priority date	—
Expiry date	Jul 4, 2038

Classification

Technology area (CPC H)Electricity
CPC primaryH04L2101/622
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Disclosed herein are systems and methods of executing scanning software, such an executable software program or script (e.g., PowerShell script), by a computing device of an enterprise, such as a security server, may instruct the computing device to search all or a subset of computing devices in an enterprise network. The scanning software may identify PowerShell scripts containing particular malware attributes, according to a malicious-code dataset. The computing system executing the scanning software may scan through the identified PowerShell scripts to identify particular strings, values, or code-portions, and take a remedial action according to the scanning software programming.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.